Mandriva Linux Security Advisory : rootcerts (MDVSA-2010:029)

High Nessus Plugin ID 44334


The remote Mandriva Linux host is missing one or more security updates.


The rootcerts package was added in Mandriva in 2005 and was meant to be updated when nessesary. The provided rootcerts packages has been upgraded using the latest certdata.txt file from the mozilla cvs repository, as of 2009/12/03.

In Mandriva a number of additional CA root certificates has been added such as ICP-Brasil (Brazil government CA),, IGC/A CA (French government CA). The IGC/A CA one was recently added upstream in the mozilla certdata.txt file.

The rootcerts package provides the /etc/pki/tls/certs/ca-bundle.crt file which most sofwares in Mandriva, and where appliable is sharing such as KDE, curl, pidgin, neon, and more.

The mozilla nss library has consequently been rebuilt to pickup these changes and are also being provided.


Update the affected packages.

Plugin Details

Severity: High

ID: 44334

File Name: mandriva_MDVSA-2010-029.nasl

Version: $Revision: 1.9 $

Type: local

Published: 2010/01/29

Modified: 2013/06/01

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:lib64nss-devel, p-cpe:/a:mandriva:linux:lib64nss-static-devel, p-cpe:/a:mandriva:linux:lib64nss3, p-cpe:/a:mandriva:linux:libnss-devel, p-cpe:/a:mandriva:linux:libnss-static-devel, p-cpe:/a:mandriva:linux:libnss3, p-cpe:/a:mandriva:linux:nss, p-cpe:/a:mandriva:linux:rootcerts, p-cpe:/a:mandriva:linux:rootcerts-java, cpe:/o:mandriva:linux:2008.0, cpe:/o:mandriva:linux:2009.0, cpe:/o:mandriva:linux:2009.1, cpe:/o:mandriva:linux:2010.0

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 2010/01/28

Reference Information

MDVSA: 2010:029